Former white hat security researcher. Graduated my M.Sc at Tel Aviv University (TAU) at 2016. Both my B.Sc and M.Sc were security related, and this website will focus mainly on my past (and present) security research projects.
List of CVEs:
- CVE 2016-7115 – Mac-Telnet client Remote Code Execution
- CVE 2016-8596 – libcsp canbus (csp) Remote Code Execution
- CVE 2016-8597 – libcsp fragmentation (sfp) Remote Code Execution
- CVE 2016-8598 – libcsp zmq driver Remote Code Execution
- CVE 2016-8633 – Linux kernel firewire driver Remote Code Execution
- CVE 2016-8636 – Linux Kernel infiniband driver (Soft RoCE) memory corruption
- CVE 2016-10158 – PHP exif module DoS – unique crash from hostile .tiff file
- CVE 2016-10159 – PHP phar module DoS
- CVE 2016-10160 – PHP phar module memory corruption (possible RCE)
- CVE 2017-11147 – PHP phar module DoS
- CVE 2017-0898 – Ruby format string memory corruption and information disclosure
- CVE 2017-17066 (GarlicRust) – I2P C++ routers (i2pd & kovri) major Info-Leak (Heartbleed-style)
- CVE 2018-8778 – Ruby unpack information disclosure
- CVE 2018-8781 – Linux kernel integer overflow in UDL driver – Local Privilege Escalation (Check Point Research)
- CVE 2018-5924 – Fax protocol Remote Code Execution in HP Inkjets (Check Point Research)
- CVE 2018-5925 – Fax protocol Remote Code Execution in HP Inkjets (Check Point Research)
- FreeRDP – Multiple critical vulnerabilities in RDP client (Check Point Research): CVE 2018-8784, CVE 2018-8785, CVE 2018-8786, CVE 2018-8787, CVE 2018-8788, CVE 2018-8789
- rdesktop – Multiple critical vulnerabilities in RDP client (Check Point Research): CVE 2018-8791, CVE 2018-8792, CVE 2018-8793, CVE 2018-8794, CVE 2018-8795, CVE 2018-8796, CVE 2018-8797, CVE 2018-8798, CVE 2018-8799, CVE 2018-8800, CVE 2018-20174, CVE 2018-20175, CVE 2018-20176, CVE 2018-20177, CVE 2018-20178, CVE 2018-20179, CVE 2018-20180, CVE 2018-20181, CVE 2018-20182
- CVE 2019-5764 – libvpx Use-After-Free in Chrome WebRTC (Check Point Research)
- CVE 2019-0887 – Microsoft RDP client Path-Traversal leading to Remote Code Execution (Check Point Research)
- Digital Cameras – Remote Code Execution in the Picture Transfer Protocol (PTP) in Canon Cameras (Check Point Research): CVE 2019-5994, CVE 2019-5995, CVE 2019-5998, CVE 2019-5999, CVE 2019-6000, CVE 2019-6001
- CVE 2020-6007 – Zigbee Remote Code Execution in the Philips Hue Bridge (Check Point Research)
- CVE 2020-0655 – Microsoft RDP client Path-Traversal leading to Remote Code Execution + Still working bypass to PathCanonicalize() WinAPI (Check Point Research)
- CVE 2020-9497 – Apache Guacamole multiple information disclosure vulnerabilities (Check Point Research)
- CVE 2020-9498 – Apache Guacamole Remote Code Execution (Check Point Research)
- Valve – Several vulnerabilities in Valve’s Game Networking Sockets, a.k.a “Steam Sockets” (Check Point Research): CVE-2020-6016, CVE-2020-6017, CVE-2020-6018, CVE-2020-6019.
Twitter: @Eyalitkin
Eyal Itkin 